The homeless homebuyer ruse first begins with an attack targeting a real estate agent. Per enterprise security firm Proofpoint, such an attack may take the form of a malicious email document that delivers a remote access trojan (RAT) or an infostealer. Bad actors may then leverage a successful malware infection to conduct a business email compromise (BEC) attack so that they might seize control of the agent’s email account and steal customers’ information, including when a particular homebuyer might be closing on a house and the amount they will pay.

Next, the digital attackers will inject themselves into the real estate transaction by abusing the compromised real estate agent’s email account to send a email. That message will oftentimes contain instructions for the homebuyer to send their down payment to an account under their control. Believing the email to be legitimate, the homebuyer will send their payment and in so doing could lose a significant chunk of money to the bad actors.

Dr. Markus Jakobsson, chief scientist at email threat protection provider Agari, says not all hope is lost if someone falls victim to the homeless homebuyer scam:

The odds are reduced and reduced over time, but if people realise that they’ve been had, they should just run to the bank. Almost always this is about wire transfers, and wire transfers actually can be reversed. It’s not easy, it’s not foolproof, but if you run to the bank within 24 hours there is a chance.

Useful Links

Other Mediaops Sites

Our website uses cookies. By continuing to browse the website you are agreeing to our use of cookies. For more information on how we use cookies and how you can disable them, please read our Privacy Policy.